nolan/nixos
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Add open-webui and partially integrate OIDC into Authelia.

Browse source
This commit is contained in:
Nolan Darilek 2025-03-11 11:18:13 -05:00
parent f29bbe2415
commit 56ecff913a
5 changed files with 37 additions and 4 deletions
Download patch file Download diff file Expand all files Collapse all files

14
hosts/hub/apps/open-webui.nix
View file

@ -1,5 +1,7 @@
{ config, ... }:
let
clientId = "xqV9QLU4JAP7i47XEa9ABbjP8MKWK3VUt1vHaTAaZYTYFdFqGkrlGmTPTAnvDDsvAb
w518mk";
in
{
systemd.tmpfiles.rules = [
"d /var/lib/open-webui 0755 root root"
@ -11,10 +13,18 @@
"8090:8080"
];
volumes = [ "/var/lib/open-webui:/app/backend/data" ];
environment = {
WEBUI_AUTH_TRUSTED_NAME_HEADER = "Remote-Name";
WEBUI_AUTH_TRUSTED_EMAIL_HEADER = "Remote-Email";
};
};
services.caddy.virtualHosts."https://open-webui.tailc50184.ts.net".extraConfig = ''
bind tailscale/open-webui
forward_auth localhost:9091 {
uri /api/authz/forward-auth
copy_headers Remote-Email Remote-Name
}
reverse_proxy http://localhost:8090
'';